Best would be to rid the box of the Trojan -- who know what else it is doing
besides sending traffic out 220!
If your AV did not find it then try ClamWin (http://clamwin.com) and/or
Microsoft's new AntiSpyWare Beta (http://www.microsoft.com/)

"id3ego2" <id3ego2@discussions.microsoft.com> wrote in message
news:C8060435-609A-447D-B9DA-D65F9C343702@microsoft.com...
> I have a dell box running server 2003 sp1, and my network folks tell me
that
> it has been compromised by a Trojan. They see outbound traffic over port
> 220. their solution is to take the machine down and reformat the drive.
> There has got to be another way. how do I block this port? Outbound
> firewall? Any suggestions would be appreciated. Thanks.